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Amendmeait A 

Reply to Office Actioii of Jaouary 3 1 » 2005 

REMARKS/ARGUMENTS 

This paper is being submitted in response to the Non-Final Office Action dated January 
31, 2005, having a shortened statutory period set to expire April 31, 2005, wherein: 

Claims 1-16 were previously pending; and 

Claims 1-16 were rejected. 

After careful consideration of the Examiner*s rejections in the above-identijBled OflSce 
Action, Applicants have canceled claims 1-16 without prejudice or disclaimer of the subject 
matter recited therein and submitted new claims 17-34 for consideration. Applicants respectfully 
submit that new claicns 17-34 more cleaiiy characterize embodiments of Applicants' invention 
and are distinguishable ficom the cited references of record. Conseqnently^ claims 17-34 are 
corrently pending in the above-identified patent application* Applicants submit that no new 
matter has been added by this amendment and request reconsideration of all pending claims in 
light of the amendmeats and remarks made herein. 

Ciaim Rejections under $5 X/S, C^JQ2 

In ttie present OflBlce Action, claims 1-16 were rejected under 35 U.S.C, § 102(e) as being 
anticipated by U.S. Patent No, 6,175^24, issued to Arnold (hereinafter, "Amol^ty Although 
the Examiner's rejections have been rendered moot by the cancellation of previously-pending 
claims 1-16 and while not conceding that the Examiner's cited references qualify as prior art but 
rather in the interest of ejcpediting prosecution, Applicants respectfully disagree with the 
Examiner's rejections and have therefore elected to traverse the rejections as applied to 
Applicants' currently pending claim as follows. Applicants reserve the right, fi>r example in a 
continuation appHcation, to establish that one or more of the Examiner's cited reference do not 
qualify as prior art with respect to the invention embodiments claimed in the above-identified 
application. 
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Reply to OjBBce Action of January 3 1 , 2005 
Applicants ' Claims 

Applicatxts* previously pending claim 1 (now canceled without prejudice or disclaimer of 
the subject matter recited therein) recited a method for generating a self-verifying certificate. 
More specifically. Applicants* previcmsly-p^ding claim 1 recited separate master and target 
public keys ("estaiblishing a master key pair including a master private key and a master public 
key,., supplying a target public key" ), an authentication code ('^prompting a user for an 
authentication code"), and the generation of certificate only in response to a correct entry of the 

authentication code ("generating a self-verifying certificate utilizing said target public key and 

( 

said master key pair otily in response to a correct entry of said authentication code") (Applicants* 
claim 1 , emphasis supplied). 

Applicants' currently-pending claim 17 (as newly submitted herein) similarly recites a 
method for employing a digital certificate. More specifically. Applicants' dabn 17 recites a 
master key pair and a target key pair including distinct first and second public keys C*storing a 
master key pair . . , wherein said master key pair comprises a first private key and a first public 
key . . .said digital certificate comprises data specifying a second public key of a target key pair**)* 
an authenticatioXL code ("generating a user prompt for said authentication oode "^ and the 
generation of a digital certificate only if a reply received m response to a user prompt is 
detamined to correctly specify the authentication code ("generating said digital certificate 
utilizing said first private key only if said reply is determined to correctly specify said 
authentication code") (Applicants' claim 17, emphasis supplied). Moreover, Applicants have 
attempted to more clearly distinguish a "certificate" as recited in claims 1 and 17 fixmi other 
elements used in conjunction with the asymmetric or public key infi-astmcture such as the 
"certified programs" taught hy Arnold as will be described herein* 
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Reply to OfiBcc Action of January 3 1 , 2005 
What Arnold Teaches 

Arnold teaches a method and apparatus for protecting application data in secitre storage 
areas (Arnold, Title). This protection is accomplished according to the teaching of Arnold via 
the creation of certified programs, the association of certified programs with persistent 
application data that they own, and the prevention of other applications (certified or otherwise) 
from accessing persistent application data not owned hy them {Arnold, Abstract). 

A certified program object is generated, according to the teaching of Arnold (see, e.g., 
Arnold, Fig. 3), by selecting a unique program name for an ^plication program whidi will be 
p^rmanettdy associated with a persistent data area(s) owned by that ^plication program. The 
program name is then combined with the actual application program into a single continuous 
data object block {Arnold, Fig. 3^ block 207). A digital signature is then formed via the 
calculation of a hash over the data object block {Arnold^ Fig. 3, block 2U) followed by the 
encryption of the hashed value {Arnold, Fig. 3, block 215). The digital signature is then attached 
to the combined program/name object to form the certified program (Arnold, Fig. 3, block 217). 
It will be noted that according to this teaching, only a single pubUc/private key pair is xised 
{Arnold, Column 5, Lines 11-50), 

Arnold further teaches that when a certified program is loaded by an operating $yst«n, 
the application program and program name axe verified as being authentic by verifying the 
digital signature portion of the certified program. This verification process is taught hy Arnold 
as including (see, e.g., Arnold, Fig, 4) a separation of program/name data object block from the 
digital signature portion of the certified program (Arnold, Fig. 4, block 301). Once separated, 
the calculation of a hash is performed over the data object block and a decryption of the digital 
signature nsing the public key of the single pubUc/private key pair (Arnold, Fig. 4, blocks 305 
and 303, respectively). The results of these two operations are then compared to determine the 
auth«iticity of the certified program (Arnold^ Fig. 4, block 307). Specifically, Arnold teaches 
that, if the two results are foxmd to be identical, 'the digital signature verifies and proves that Pa 
Na was signed by the certifying aufliority and it also proves that Pa Na has not been modified." 
(Arnold, Column 6, Lines 9-11). Once verified, the program name may either be associated with 



Page 11 of 15 



PA(S 12/17 ' RCVD AT 4/1/2005 10:38:39 AM [Eastern Standa^ 



APR/01/2005/FRI 09:29 AM DILLON & YUDELL, LLP 



FAX No. 5123436446 



P. 013 



Application Serial No. 09/7448,654 
Axaendment A 

Reply to Office Action of January 31, 2005 

a new persistent data area or used to ensure that only the application program "owning" an 
existing persistent data area may access it (s^^ Arnold, Column 6, Lines 24-40), 

What Arnold Fails to Teach 

In the present Office Action, with regard to Apphcants' previously-pending claim 1, the 
Examixier states that at Columxi 5, Lines 30-42 Arnold teaches, '^Establishing a master key pair 
including a master private key and a master pxjblic key, where a private key pair and public key 
pair are established" (emphasis supplied). Applicants respectfidly disagree and submit that 
Arnold jfails to teach distinct first and second public keys as recited in Applicants' claims. 
Applicants* claim 17, as submitted herein, recites a digital certificate gexierated utilising a fixst 
private key of a master key pair including first public key and comprising data specifying a 
second pubUc key of a target key pair. By contrast, Arnold teaches, as described herein, a 
certified program including 1) a data object block consisting of an application program and a 
program name and 2) a digital signature calculated firom the data object block using a single key 
pair, KpR and Kpu- Applicants submit that neither a digital signature, an application program, 
program name (or a combination thereof) of Arnold teach "a second public key*' or a target key 
pair as claimed. 

In the present Office Action, wifli regard to Applicants' previously-pending claim 1, the 
Examiner further states that Arnold teaches, "Supplying a target public key, where the public key 
is supplied when the keys are established." Applicants respectfully disagree for at least the 
foregoing reasons. Moreover, Applicants note th^t the present Office Action fails to indicate 
which portion of Arnold teaches the indicated claim element as required by 37 C.F,R* §1.104 
and consequently tihiat a prima facie case of anticipation has not been established with respect to 
Applicants' claims. 

In the present OfBce Action, with regard to Applicants' previously-potiding claim 1, the 
Examiner also states thai Arnold teaches, ''Requesting generation of a self-verifying certificate, 
where generation of a self verifying certificate occurs when a program asks the operating system 
to allocate a new persistent data area,** Applicants respectfully disagree. As Arnold fails to 
teach distinct key jmirs (and associated public keys), Applicants submit tiiat the Examine' s 
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reference may not be construed as teaching a certijScate v/bxoh is generated utilizing a first 
private key of a master key pair including first public key and comprising data specifying a 
second public key of a target key pair as claimed. This distinction between a "certificate" as 
claimed by Applicants and a certified program as taught by Ampld is farther highlighted 
numerous times within the present Application. For example. Applicants' specification states 
that. 

Digital certificates link details about an individual, or an organization to a pubKc key, and 
are able to identify individuals, or organizations. A common use of a digital certificate is 
to verify that a user sending a message is the person the user claims to be. The digital 
certificate may contain your name, a serial number, expiration dates, a copy of the 
certificate holder^s public key, and the digital signature of a Certificate Authority . The 
digital certificate contains the digital signature of the CA so that anyone can verify that 
the certificate is real. (Applicants' Specification, Page 3, Lines 14-24, emphasis supplied) 

and further at Page 15, lines 10-12 that, *This target key pair is different &om the master key 
pair. The target key pair is a second, completely separate, key pair/' 

Applicants further submit that even if a certified program was assumed arguendo to teach 
a certificate as claimed, a certified program is not generated (or requested to be generated) 
according to the teaching of Arnold ''when a program asks the operating system to allocate a new 
persistent data area" as proposed in the present OfEce Action. Rather, a program is certified 
(i.e., a certified program is generated), according to ArnoWs teaching, before an ^pUcation 
program is loaded and used {Arnold^ Column 5, Lines 11-16). Moreover, Applicants note that 
the present Office Action fails to. indicate whidi portion of Arnold teaches the indicated claim 
element as required by 37 C.F.R, §1,104 and accordingly that a prima facie case of anticipation 
has not been established with respect to AppUcants' claims. 

In the present Office Action, with regard to Applicants' previously-pending claim 1, "fiie 
Examine states that Column 5, Line 65 - Colunon 6, Lines 5 ot Arnold teaches, "Generating a 
self-verifying certificate utilizing said target public key and said master key pair only in response 
to a correct entry of said authentication code, said certificate used only internally within said 
computer system, where the certificate is recovered or "generated" firom Hxe validation of the 
signature." The Examiner fiirther states that Arnold's program name element teaches an 
"authentication code" as claimed. Applicants respectfidly disagree and submit both that 1) 
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jxeither a certified program as taught hy Arnold nor a certificate as claimed by Applicants is 
"generated" by the validation of ArnphPs distal sigaature and further that 2) a certified program 
is not generated, according to Arnold*^ teaching, only if a reply to a user pronoLpt is detenniaed to 
correctly specify a stored authentication code as claimed. 

In contradiction to the Examiner's proposed interpretation, Arnold actually teaches the 
inverse of the certification process (by which a certified program is created) when a certified 
program is verified for authenticity. For example, block 207 of Fig. 3 of Arnold "combine" as 
compared to block 301 of Fig. 4 "separate" illtastrates this inverse relationship. . Consequently, 
Applicants submit that a certified program is not "generated" when its component digital 
signature is validated. Moreover, although a program name is selected when a certified program 
is generated, the creatiotx of a certified program is not contingent iqjoti a determination that a 
selected program name correctly specifies a program name store elsewhere. Rather, Amold*s 
teaching is actually contrary to this, stating, '*ThQ name does not have to possess any special 
characteristics but only has to be unique within the domain of names of profirams that wiil be 
certified by this particular authority*' {Arnold^ Coluimx 5, Lmes 18-21, emphasis supplied). 
Accordingly, Applicants submit that Arnold foils to that a certified program is generated only if a 
reply to a user prompt is determined to correctly specify an authentication code as required by 
Applicants' claims. 

For at least the foregoing reasons. Applicants respectfijUy submit that claim ITj as 
submitted herein, is allowable in view of the Examiner^ s cited reference Arnold, AppUcants' 
claims 23 and 29 each include one or more elonents substantially similar to those described with 
respect to claim 17 and are therefore allowable for at least the reasons stated with respect to that 
claim- Ajl remaining claims depend directly or indirecdy jBcom Applicants' claims 17, 23 or 29 
and are therefore sinailarly allowable. 
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CONCLUSION 

Jn light of the amendments and remarks made herein. Applicants submit that all pending 
claims are allowable and ieque$t a Notice of Allowance thereof 

No extension of time for this response is believed to be necessary. However^^ in the eveat 
an extension of time x$ required, that extension of time is hereby requested. Please charge any 
fee associated with an extension of time as well as any other fee necessary to fiarther the 
prosecution of this application to IBM COKPORAHON DEPOSIT ACCOUNT No. 50-0563, 



Respectfially subgiijtted, 




Justing Dillon 
Registration No. 42,486 
DILLON & YUDELL LLP 
891 1 North Capital of Texas Highway 
Suite 2110 
Austin, Texas 78759 
512343.6116 

ATTORNEY FOR APPLICANT(S) 
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